Solved

Routing through multiple switches, help!

Posted on 2009-03-31
14
297 Views
Last Modified: 2013-11-16
Here's the current setup:
Internet ->
Netopia 3347W-ENT DSL/Router ->
Netgear FVS336G ->
48-port switch ->
Servers, Workstations, Printers, and everything else.

I'm still confused on how the routing system works, but somehow or another I'd like to allow access from our outside ip (eg. 59.194.482.19, or something), into the network, so that we can have remote access clients, VPN capabilities, web hosting, any of that.

The LAN side of things seems to be working fine, everyone has internet access, all of the workstations and servers communicate well, but the WAN side does not. What kind of routing should I be setting to get this dream to work? I've tried a lot of different things and have thus far failed miserably.

Any help we be much appreciated.
0
Comment
Question by:ringo380
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 9
  • 5
14 Comments
 
LVL 4

Expert Comment

by:Multipath
ID: 24034676
Does your Netopia router allow port forwarding?  If so the solution is easy simply forward the port through the Nettopia to the Remote Access system.  Most router interfaces keep this under application ports.  You simply forward the port for access to the ip address of the server you want to reach.
0
 

Author Comment

by:ringo380
ID: 24039610
It does have port forwarding to an extent (for example, there is no option specifically called Port Forwarding), there are a few selections that allude to something along the lines of port forwarding, but even the wording within the menus is a little confusing to me, here's a few of the options:

- IP Static Routes
  Destination Network,
  Netmask
  Interface Type
  Gateway
  Metric
  RIP Advertise

- IP Static ARP
  IP Address, Hardware MAC

- Pinholes
  Protocol
  External Port Start - End
  Internal IP
  Internal Port

- IP Maps
  Internal IP Address
  External IP Address

- Default Server
  NAT Default Mode (Currently set to IP-Passthrough, I believe this is vital for the setup)
  DHCP Enable (checked)
  Host Hardware Address (MAC)

I'm used to the simplicity of netgear/linksys/etc interfaces, and everytime I've attempted to do a port-forwarding-esque solution, I get a "validation error" or something along those lines, saying that there is a  confliction with one of the other settings.
0
 
LVL 4

Accepted Solution

by:
Multipath earned 500 total points
ID: 24040243
It would be done in pin holes, I am sorry I am not familiar with hte interface but I would look in there and create the ports going to the internal ip and port this should solve your problem.
0
Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

 

Author Comment

by:ringo380
ID: 24040375
I have tried pinholes, and the issue is that our internal web port is the same as our external web port, and thus the validation doesn't pass because of a "default web server port is already set to 80!" error, or something along those lines.

I really wish they would standardize router interfaces....
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24040416
Yeah you would have to use a different outside port to the inside port 80 on the system
0
 

Author Comment

by:ringo380
ID: 24040433
Now, I've set internal port to 3389, the RDP port, and external to 80, and I'm still getting a validation error, hmm.
0
 

Author Comment

by:ringo380
ID: 24040442
Ack, I believe I've just figured out my own issue. Internal AND external should be 3389.
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24040480
yes...
0
 
LVL 4

Expert Comment

by:Multipath
ID: 24040486
Let me know if that works.
0
 

Author Comment

by:ringo380
ID: 24040865
Alright, the strange series of events that occurred afterwards:
- Enabled a pinhole with port UDP 3389 to forward to IP 192.168.1.56 (the RD destination), no dice.
- Figured I had to also change something in the Netgear router, since the netopia goes through the netgear and THEN into the server, so I added a service to the netgear firewall that allows the UDP 3389 service inbound and directs it to 192.168.1.56.
- Netgear Web-based interfaces CEASES TO RESPOND (??)
- Reset the netgear interface... STILL CEASES TO RESPOND. :(

0
 

Author Comment

by:ringo380
ID: 24040892
Attempted to log on to Netgear router via 192.168.1.1:3389, get the initial page, and then again a failure on everything else... this is getting odd.
0
 

Author Comment

by:ringo380
ID: 24041096
Now under a LAN Scanning program, 192.168.1.1 is listed as having a NETBIOS of our RD Server....
0
 

Author Comment

by:ringo380
ID: 24050212
Now I'm back to the original setup, no progress has been made. The pinhole on UDP 3389 to 192.168.1.56 apparently made my Netgear router (address 192.168.1.1) become confused.

I really have no idea how that happened or where to progress to at this point.
0
 

Author Comment

by:ringo380
ID: 24088524
Just an update: Everything is "functional", and back to the original configuration as described in the first question posted. I still have been unable to get true remote access to work (as in, without using a web based utility like LogMeIn, etc)
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question